Greetings,A while back I needed support for mod-rewrite and after searching for a solution on iis6, I went with an application from Micronovae (http://micronovae.com/). We also had multiple different sites being hosted and some had secured folders that were done through windows control panel (remove iuser account on a folder, then add a windows user account so that it would ask for user/pass to view folder). All of this worked well, but now I'm in the process of moving all of the sites on that server to a new box.

In comes new server running Win2008+IIS7+php+mysql. For lack of understanding, I went with Micronovae again to handle the .htaccess files that some sites were using so when I moved the site from old server to new server; and it works very well. So that's one problem handled; my other problem is what to do with the random password protected folders? I do not want to use windows user accounts. After some digging @IIS.net, I found HeliconTech's APE application for IIS7. In reading about it, it seems it would handle everything Micronovae's Re-Write app does, but more. I saw that it handled many of the "mod_" function and I think I understand it does handle password protected items.

Is this true?I'm looking at disabling the already installed micronovae mod re-write (that only does re-write) and going with APE for everything.

What you read about Ape is true. It supports over 30 Apache modules on IIS7.
And it does support various auth options, so you'll be able to set up password protection you need.
Here's some info on that http://www.helicontech.com/articles/http-authentication-and-authorization/

"I do not want to use windows user accounts"
Here's the article related to this issue http://www.helicontech.com/articles/site-authentication-not-using-windows-users/

"Do you know if there be any problems with the install if the server I would like to implement APE on has multiple sites on it instead of just
one default web-site?"
- this has absolutely no effect on correctness of Ape installation.

I downloaded the 45 day trial and installed it on a test system to play with. Seems pretty straight forward on things. I love the edit ability of the .htaccess files directly from there.

However, I'm having a problem with URLs that I can't figure out what is going on.

BTW - thanks for the articles on folder/file auth w/o windows accounts. Tried it and it works with no problem at all.

The problem I'm having with URLs is a 400.0 Bad Request (Module: Helicon.Ape).It is happening on sites, such as a shopping cart site, where the url of the products is based off the name of the product. So a product named "Animal Print Baby Shoes – 2-3605" would end up being something like ".com/products/Animal-Print-Baby-Shoes-–-2%2d3605.html" but I'm getting an error 400.0 Bad Request.

Another example is for a product category called "Scripture/Inspirational T-Shirts" which results a link of ".com\categories\Scripture{47}Inspirational-T%2dShirts\"

And basic page names like "Shipping & Handling" are "com\pages\Shipping-&-Returns.html"

Sure thing Anton,
Here's what I'm getting when I do a couple different thing. When I
enabled the log files, they grew super fast, and a lot of the info
repeats itself. I tried to grab an error line; hope what's below is
enough to go on.

Also, is there a way to only turn on logging for one site and log it's rewrite errors rather than for all sites?

Sorry, one more thing I forgot to ask is the config you are using.
And one clarification: do these problematic URLs contain specific characters in the main part or in query string?
Can you show requested URLs in full.

Hey Anton,I was digging through pages and pages of google searches last night and ended up finding some article at Microsoft that talked about a regkey for .net framework 1.1. Now supposedly you don't need this regkey unless you are on version 1.0. I looked at our server and it had .net framework 4.0 which was supposed to fix the problems back in 1.0 with the URL Bad Requests that I'm having.

Try the links again and they work without a problem.At least the links that have "&", "-", and ". before the .htm" are all working. I haven't had a chance to try out the WordPress site I was messing with, but I'm hoping this fixed it as well.

I added the above regkey, iisreset, it works, remove the key, iisreset, doesn't work...chalk it up to a microsoft thing?

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot delete your posts in this forumYou cannot edit your posts in this forumYou cannot create polls in this forumYou cannot vote in polls in this forum